Filter
Top Products
35-35
Cisco ASDM User Guide
OL-16647-01
Chapter 35 General
Configuring SSL VPN Connections
Connection Profiles—Configure protocol-specific attributes for connections (tunnel groups).
• Add/Edit—Click to Add or Edit a Connection Profile (tunnel group).
• Name—The name of the Connection Profile.
• Aliases—Other names by which the Connection Profile is known.
• SSL VPN Client Protocol—Specifies whether SSL VPN client have access.
• Group Policy—Shows the default group policy for this Connection Profile.
• Allow user to select connection, identified by alias in the table above, at login page—Check to
enable the display of Connection Profile (tunnel group) aliases on the Login page.
Setting the Basic Attributes for an SSL VPN Connection
To set the basic attributes for an SSL VPN connection, choose Configuration > Remote Access VPN >
Network (Client) Access > SSL VPN Connections > Add or Edit > Basic. The Add SSL VPN Connection
(Basic) window opens.
Fields
Set the attributes in the Add SSL VPN Connection (Basic) window as follows:
• Aliases—(Optional) Enter one or more alternative names for the connection. You can spaces or
punctuation to separate the names.
• Authentication—Choose one of the following methods to use to authenticate the connection: AAA,
Certificate, or Both.
• AAA Server Group—Choose a AAA server group from the drop-down list. The default setting is
LOCAL, which specifies that the security appliance handles the authentication. Before making a
selection, you can click Manage to open a dialog box over this window to view or make changes to
the security appliance configuration of AAA server groups.
Selecting something other than LOCAL makes available the Use LOCAL if Server Group Fails
check box.
• Use LOCAL if Server Group fails—Check to enable or uncheck to disable the LOCAL database if
the group specified by the Authentication Server Group attribute fails.
• DHCP Servers—Enter the name or IP address of a DHCP server to use.
• Client Address Pools—Enter the pool name of an available, configured pool of IP addresses to use
for client address assignment. Before making a selection, you can click Select to open a dialog box
over this window to view or make changes to the address pools.
• Group Policy—Select the VPN group policy that you want to assign as the default group policy for
this connection. A VPN group policy is a collection of user-oriented attribute-value pairs that can
be stored internally on the device or externally on a RADIUS server. The default value is
DfltGrpPolicy. You can click Manage to open a dialog box over this one to make changes to the
group policy configuration.
• SSL VPN Client Protocol—Check Enabled to enable SSL VPN for uncheck to disable it.
Modes
The following table shows the modes in which this feature is available: